Senior DevOps Engineer

Senior DevOps Engineer

Hybrid in Orem, UT $130,000 - $150,000

Nexio is seeking a highly skilled and innovative DevOps Engineer to join our DevOps and Platform Engineering team! We are revolutionizing how payments and financial workflows are automated and optimized using specialized AI agents.Our platform is built primarily on AWS cloud infrastructure with a serverless and container-based services. You will play a critical role in supporting Nexio’s growth by building and maintaining infrastructure, security, and deployment processes that power our applications and services. You will help optimize performance, scalability, reliability, observability, security, and agentic automation (BI ops and AI ops).

Responsibilities

Build and manage AWS infrastructure using best practices in security, scalability, high availability, and observability

Manage Infrastructure as Code (IaC) using Terraform

Support CI/CD deployment pipelines across environments

Collaborate on Scrum teams with Product Managers, UX/UI, and Developers

Support the Data and AI/ML Teams

Track and manage system and software patches and upgrades

Uphold security best practices, including tracking the remediation of vulnerabilities

Ensure PCI-DSS compliance, including performing the yearly PCI Audit

Collaborate on designing and maintaining a scalable architecture

Collaborate on designing and maintaining high availability systems

Maintain effective observability with metrics, logging, monitoring, alerting, and incident response systems

Be available after hours for incident response/on-call rotation

Qualifications

Minimum 4 years experience deploying and managing systems using Amazon Web Services

Minimum 4 years experience deploying infrastructure as code using Terraform, including building modules for developers

Minimum 4 years experience using CI/CD pipelines to automate infrastructure deployment (bitbucket or github/gitlab)

Minimum 4 years experience with at least one programming language (JavaScript, Python, Go, Bash, etc.)

Minimum 2 year experience writing or supporting API endpoints or equivalent public services, unit tests, integration tests

Working knowledge of HTTP status codes and error handling

Working knowledge of AWS networking (VPCs, subnets, security groups, route tables, internet gateways, NAT gateways, NACLs, IPv4, IPv6)

Working knowledge of AWS IAM roles and policies

Experience deploying serverless applications with Lambda, API Gateway, CloudFront

Experience working with Aurora (MySQL) and DynamoDB serverless databases

Experience deploying applications on AWS ECS/Fargate with ALB and Auto Scaling

Experience with Linux server management, bash scripting, SSH keys, SSM, MFA

Experience managing, building and deploying Docker containers

Experience with S3 buckets and bucket policies

Experience with SQS (or other queuing mechanisms), SNS, SES

Experience with Certificate Manager, Route53, DNS, DNSSEC and domain management

Experience with Secrets Manager

Experience with KMS, Key Types, and associated cryptography

Experience with TLS/HTTPS, ciphers, key/cert types, HSTS

Experience with OIDC/SAML/SCIM/OAuth

Experience with logging and observability (SumoLogic, Coralogix, and/or Grafana preferred)

Good written and interpersonal communication skills

Self-starter, takes initiative, accountable

Excellent troubleshooting and problem solving skills

Preferred Experience

Working knowledge of the PCI-DSS 4.0.1 security standard and experience with PCI-DSS level 1 audits (SOC 2 or other security audits also helpful)

Working knowledge of Data Protection frameworks like CCPA/CPRA, GDPR, etc.

Experience with NodeJS/NPM

Experience with Python

Experience with BI ops - Domo, Tableau, or other

Experience with AI Ops - LLMs, Bedrock, RAG, Vector Databases, Agent Workflows

Experience with managing AWS Workspaces and PCoIP zero clients

Experience with managing AWS multi-region architecture

Experience with PGP Encryption

Experience with email security and deliverability (SMTP authentication, SPF, DKIM, DMARC, PTR records, mta-sts, bimi)

Experience with the Payments industry

Experience with IPSec and WireGuard VPNs

Experience with Artifactory

Experience with OpenTelemetry

Experience with Tenable (or other vulnerability tracking software)

Experience with A2P 10DLC SMS (registration, campaigns, and compliance)

What is Nexio?

Nexio provides payment service solutions for a variety of clients, from ecommerce merchants to software platforms. Our goal is to empower businesses with the tools they need to optimize payment revenue and adapt to dynamic market needs. We aim to be a partner, advisor, and innovator, dedicated to adding value to every client's business.

Benefits

Generous PTO

Medical, Dental, Vision, Life, STD, and LTD insurances; 5% 401k match, HSA match

Free therapy for employees and their dependents

Office snacks and on-site perks!